This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft File: qZ9mmGknIBFUlstFlwLEOtxI1q0.mft (raw, json) Hash identifier: KveeZj7qBYTvbRrykYHNkXJriUyUI28euhsJXTvJssI= Subject key identifier: CA:D5:0B:60:15:52:6A:5B:4A:1C:15:E4:16:85:3C:AB:A7:BC:93:53 Authority key identifier: A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD Certificate issuer: /CN=A91CACCA/serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Certificate serial: 34FF Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft Manifest number: 34FF Signing time: Sat 24 Jan 2026 15:08:18 +0000 Manifest this update: Sat 24 Jan 2026 15:08:17 +0000 Manifest next update: Sat 31 Jan 2026 15:08:17 +0000 Files and hashes: 1: qZ9mmGknIBFUlstFlwLEOtxI1q0.crl (hash: GHaowuFOkZJfUBKrw5GRI/2wzOAQO9WFoZrsJpX9xYs=) Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sat 31 Jan 2026 15:08:17 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 13567 (0x34ff) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91CACCA, serialNumber=A99F6698692720115496CB459702C43ADC48D6AD Validity Not Before: Jan 24 15:08:17 2026 GMT Not After : Jan 31 15:08:17 2026 GMT Subject: CN=6974e062-f3c4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:e9:23:b2:8f:35:17:72:cf:de:af:7d:24:d4:24: 0a:a6:77:8b:f5:7f:58:07:bc:20:b2:26:d9:fd:7b: a7:4c:6c:41:4c:1d:fc:10:f3:26:99:5b:67:80:8d: f3:0f:64:1d:28:4f:e7:de:4f:ee:e2:17:15:19:3f: 91:78:9c:6a:9a:21:ca:1a:1b:2d:44:09:c7:e6:d5: b8:5a:c6:32:98:71:aa:bc:a7:fe:67:d1:12:38:8e: cf:89:c0:c3:fa:fd:3d:a5:ed:c7:bd:7a:3c:5a:cc: ae:08:de:f1:45:6a:d5:5d:e9:0e:7d:48:1d:c3:c0: 19:85:8f:1d:69:ab:d8:fa:4f:03:d7:06:e5:fc:0c: 2e:85:38:d3:13:a0:6b:2c:41:eb:b1:ab:db:ec:d8: 7a:b2:0f:5f:42:4c:db:3f:17:20:e2:c9:33:51:00: f6:a2:fd:86:86:a9:46:10:a6:c7:0c:af:0c:c9:39: 25:01:5c:ef:83:74:fb:db:7c:7e:fd:74:47:68:1b: e0:a9:89:80:15:e4:ed:23:44:2b:cd:7d:b6:0a:a0: 75:a6:3d:1a:d0:c0:10:6a:5e:8f:40:22:85:63:d4: 03:f2:d1:c9:e0:6a:c7:28:b5:c3:5b:73:3c:09:8d: d2:a2:71:c7:83:5d:c7:59:de:f3:bd:84:a4:ca:18: 93:3f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: CA:D5:0B:60:15:52:6A:5B:4A:1C:15:E4:16:85:3C:AB:A7:BC:93:53 X509v3 Authority Key Identifier: keyid:A9:9F:66:98:69:27:20:11:54:96:CB:45:97:02:C4:3A:DC:48:D6:AD X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/qZ9mmGknIBFUlstFlwLEOtxI1q0.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91CACCA/6086D7821DA911E2BB1B4EA408B02CD2/qZ9mmGknIBFUlstFlwLEOtxI1q0.mft RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit Signature Algorithm: sha256WithRSAEncryption ad:4f:86:32:21:16:8e:0c:79:28:57:74:fe:45:54:b1:6f:d3: a6:d8:d9:14:7e:40:3c:26:24:d8:58:ef:2a:ea:af:db:1d:76: e4:22:31:35:f7:13:c7:21:a4:2b:25:ca:35:23:c9:cc:b0:be: 38:22:d8:18:40:69:ce:24:30:14:11:a9:7e:e3:12:3c:8f:59: 00:fc:2d:9e:0f:7d:d2:ab:e3:13:31:2b:21:d7:e2:90:bc:4e: ea:21:f2:67:9f:b5:86:76:b9:2a:16:8f:a5:ce:e8:6b:8e:9c: c2:c3:90:c9:da:91:d2:66:cf:af:de:b0:71:8e:ae:ce:55:3f: 2e:42:9d:f5:99:26:60:08:63:90:90:31:7f:e1:04:4b:99:5c: 07:c7:94:2d:74:26:f3:29:36:c3:6e:76:e7:8d:ee:f7:e1:7b: 51:13:b1:de:b9:a5:36:4c:9a:27:8b:6a:75:d1:5c:8e:99:29: 77:4e:d5:91:3d:25:37:7d:d1:8c:8a:ca:19:e4:7b:5e:0f:2b: 91:b2:7b:5f:18:b1:6b:4f:04:b7:31:c6:17:98:40:ea:e9:80: 4b:ba:96:20:f5:96:de:2f:00:da:b0:b4:f6:12:52:a8:b2:53: 3b:26:85:aa:f6:52:4e:dc:68:56:b1:13:02:70:74:56:d8:04: d3:1d:c7:25 -----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgICNP8wDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx Q0FDQ0ExMTAvBgNVBAUTKEE5OUY2Njk4NjkyNzIwMTE1NDk2Q0I0NTk3MDJDNDNB REM0OEQ2QUQwHhcNMjYwMTI0MTUwODE3WhcNMjYwMTMxMTUwODE3WjAYMRYwFAYD VQQDDA02OTc0ZTA2Mi1mM2M0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA6SOyjzUXcs/er30k1CQKpneL9X9YB7wgsibZ/XunTGxBTB38EPMmmVtngI3z D2QdKE/n3k/u4hcVGT+ReJxqmiHKGhstRAnH5tW4WsYymHGqvKf+Z9ESOI7PicDD +v09pe3HvXo8WsyuCN7xRWrVXekOfUgdw8AZhY8daavY+k8D1wbl/AwuhTjTE6Br LEHrsavb7Nh6sg9fQkzbPxcg4skzUQD2ov2GhqlGEKbHDK8MyTklAVzvg3T723x+ /XRHaBvgqYmAFeTtI0QrzX22CqB1pj0a0MAQal6PQCKFY9QD8tHJ4GrHKLXDW3M8 CY3SonHHg13HWd7zvYSkyhiTPwIDAQABo4ICqDCCAqQwHQYDVR0OBBYEFMrVC2AV UmpbShwV5BaFPKunvJNTMB8GA1UdIwQYMBaAFKmfZphpJyARVJbLRZcCxDrcSNat MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFDQUNDQS82MDg2RDc4MjFE QTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklCRlVsc3RGbHdMRU90eEkx cTAuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3FaOW1tR2tuSUJGVWxzdEZsd0xFT3R4STFxMC5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHFBggrBgEFBQcBCwSBuDCBtTB+BggrBgEFBQcw C4ZycnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD QUNDQS82MDg2RDc4MjFEQTkxMUUyQkIxQjRFQTQwOEIwMkNEMi9xWjltbUdrbklC RlVsc3RGbHdMRU90eEkxcTAubWZ0MDMGCCsGAQUFBzANhidodHRwczovL3JyZHAu YXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwFQYIKwYBBQUHAQgBAf8EBjAEoAIF ADAhBggrBgEFBQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMA0GCSqGSIb3DQEB CwUAA4IBAQCtT4YyIRaODHkoV3T+RVSxb9Om2NkUfkA8JiTYWO8q6q/bHXbkIjE1 9xPHIaQrJco1I8nMsL44ItgYQGnOJDAUEal+4xI8j1kA/C2eD33Sq+MTMSsh1+KQ vE7qIfJnn7WGdrkqFo+lzuhrjpzCw5DJ2pHSZs+v3rBxjq7OVT8uQp31mSZgCGOQ kDF/4QRLmVwHx5QtdCbzKTbDbnbnje734XtRE7HeuaU2TJoni2p10VyOmSl3TtWR PSU3fdGMisoZ5HteDyuRsntfGLFrTwS3McYXmEDq6YBLupYg9ZbeLwDasLT2ElKo slM7JoWq9lJO3GhWsRMCcHRW2ATTHccl -----END CERTIFICATE-----Generated at Sun Jan 25 02:55:38 2026 by rpki-client